You can specify which parts of the response
message to encrypt
when configuring the server for response encryption.
Before you begin
Important: There is an important distinction
between Version 5.x and Version 6.0.x and later applications.
The information in this article supports Version 5.x applications
only
that are used with WebSphere® Application Server
Version 6.0.x and
later. The information does not apply to Version 6.0.x and
later applications.
Prior
to completing these steps, read either of the following topics to
become familiar
with the
WS Extensions tab and the
WS Bindings tab in
the Web
services editor within an assembly tool:
These
two tabs are used to configure the Web Services Security
extensions and the Web Services Security bindings, respectively.
About this task
Complete the following steps to specify which parts of
the response
message to encrypt when configuring the server for response encryption:
Procedure
- Launch an assembly tool. For more information,
see the
related information on Assembly Tools.
- Switch
to the Java Platform, Enterprise Edition (Java EE)
perspective. Click Window > Open Perspective > J2EE.
- Click EJB Projects > application_name >
ejbModule > META_INF.
- Right-click
the webservices.xml file, select Open
with > Web services editor.
- Click
the Extensions tab, which is located at the bottom
of the Web Services Editor within the assembly tool.
-
Expand Response sender service configuration details >
Confidentiality. Confidentiality refers to
encryption
while integrity refers to digital signing. Confidentiality reduces
the risk
of someone understanding the message flowing across the Internet.
With confidentiality
specifications, the response is encrypted before it is sent and decrypted
when it is received at the correct target.
- Select
the parts of the response that you want to encrypt by clicking Add and
selecting Bodytoken or Usernametoken. The
following
information describes the message parts:
- Bodycontent
- User data portion of the message.
- Usernametoken
- Basic authentication information, if selected.
A user name
token does
not appear in the response so you do not need to select this option
for the
response. If you select this option, make sure that you also select
it for
the client response receiver. If you do not select this option, make
sure
that you do not select it for the client response receiver.
What to do next
After you specify which
message parts to encrypt, you must specify
which method to use message encryption. See the task for choosing
the encryption
method when configuring the server for response encryption.